Analysis

  • max time kernel
    133s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 20:19

General

  • Target

    a22cc412a51b3dfd6b0c9d2ed9c34201_JaffaCakes118.html

  • Size

    352KB

  • MD5

    a22cc412a51b3dfd6b0c9d2ed9c34201

  • SHA1

    af413188d3598616ca4aa83381436b1929a2ab3f

  • SHA256

    1a9f2c3b08b9f71e14d0027c152a125f584f2bf220ecaf41052e114de8123c3e

  • SHA512

    5216cbc88c8c04744acdf6a215010e4aec7542c62a0dc3a31255ade914298e3bc2e7e93856ce9bd1e718a84c1ca0c590913ffae6912ecfa06a62e68c954a1796

  • SSDEEP

    6144:GsMYod+X3oI+YJ67WbZTCt6sMYod+X3oI+YJ67WbZTC8:k5d+X3zEMZmY5d+X3zEMZn

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a22cc412a51b3dfd6b0c9d2ed9c34201_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2404
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2404 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1724

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3ddf149d9348bb22e3a496c76160e40

    SHA1

    fba6d1fa51878200cf736674b47e635297661fe0

    SHA256

    0b3d40ce3edfe12d7a160feb8f5f6d166ffa68af51dd3f7086638b47b4e774dc

    SHA512

    51174c2314e66f162e6d59f0b2558da8b27886c832427ac53ed4760961b660405aba35b560d698f211e089b12bcb090d4ce5ce2b7ae26194ce938b0ab9b12e8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    23522832153550620dfa3ab17ef3b0f8

    SHA1

    1239d8bf2f391ce61c2d0853e999a75c669102f6

    SHA256

    2a17b322b9031c7169db39596f257a3c8f8543068a08c8adecc9bf3fda0f49fc

    SHA512

    b272f55477a8dc2a0bd93951968929ab3235fc8025e7fe575c70f1e30d2fa9e95b3510be1afa94f242c6b516888de41cc8621142af1c78b46b63b3f05bf66bed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9eaed2104ac6ae59caaae15351580651

    SHA1

    e76531636c18011eb34fbd2dd3ac0e96e048b4f3

    SHA256

    0043fcdd8bea5be7a2b4e16e57c221d6a38625fb12f9f58be504746ee4dc94fb

    SHA512

    02c08986e76b8ff5973b4882a3abb304e771d9b5fa26c3ba4ed17814fdef55589dd2fed7115afa7158c1cc764abbb354a47eba2d35bb83f529891506e8e44c4b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45aeab5c6751e5b36835bbb34cd0a213

    SHA1

    390d196f0c732c652968dd017c93ea8cc733d9a4

    SHA256

    cf31c667cf176a50f645027eb821c9d3548322d51e4f20111c84f703878db570

    SHA512

    dba419c6ed2f048c3c78efe21b4d30a54c81d37f8a42384d0e31bd3434f8b6955c063de67d6988c124a95b77d75e1dc1d30dac5781cd03e0ccbe1845a647a71e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7631b1c9b81013ad8215e869e9eb94c6

    SHA1

    708d43c5f4d98e120ff94a0fd6642c43af45fdfc

    SHA256

    00fd8408d35839d27c1c87f7784da0998ef6cd0d7eb1c2c30a53546df80ca001

    SHA512

    4e6a1cf9e1d00f7c8e3c5eeaa86488ee56e822b7cadf8742ac12e73c76241b3208d08f00eb1d547259a3d688a5ebb3e949a382a80923a7fe544ea530ab0f1023

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e76c26f5369408f766e0a23328a1f52f

    SHA1

    2d77d7888f5bec080084018ea59b34a99d9e397d

    SHA256

    4b000105874ed9ad4f913863a69ed7c09e5fddd225eeed0ceb75218ceedfe306

    SHA512

    fe1aafa9382de04052b566025c1eed4530dfb20f7da0bef8a132590a7b42b59d5585e973b94836a757126290ddc76159aba990f60a37c70581fb11c61cd9539f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4db62e60a93239244fe086a844466d40

    SHA1

    a5cac8db85c484854d5b0fa84c4e6b4d388df0e7

    SHA256

    9abee2f260015811027397f57a3398b1a95af6d8db371df128aae9b6522cf678

    SHA512

    5c151d3420afb707bf1b685198b5aaaa1fa6c87a4cb820f5347d95ea1fa8400f9c374c4315933b5f496f8ea144fb7a987aba6e4596576862765e9a1c46f6b79c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7955033ca48884072340a29af9188716

    SHA1

    ea1f749bef181054e8f2f1a67472d93356cdc160

    SHA256

    d53fb44a3780b03c8463f36a9788776943b04d8ea33878458de8d90c8b054f9a

    SHA512

    affdc3857bd6b52617ed792b9ef91c922d5962408a7593a1c96c322ec4fde9e0ad18c7ab4530c99e49b151dc7dcf10b526451b07ece012c25ebb2876fc09375e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95c2b0ddc667a1ea168e74d80dc69d63

    SHA1

    b6b2722b9b73cf27eed6d873d5940a25adefdbc9

    SHA256

    32fa020e31a17ec6009c6f0a7ebe8ee8cfcde5ba75bb4d5a1b09faee5dd008e7

    SHA512

    7b9e0b22b12690ccc2cc0355e8e6d7e4072d8ac3b4cd2d8b9007fd13d145c22c512176004e49ce2785b4b09972ade54cc6deb002ace02931b7ba411bcb552d66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a69a99bc44fb4af39d987140d6094e2

    SHA1

    a3e27141c75a07ceee9df945917190f15371903b

    SHA256

    a180f45b867dbba1fd18245643281ce6ee56fb6635f74ecbecb241df5226b442

    SHA512

    42e12088a0823ac4e2426e2e9fd10ed243fc54077b7de4811e281ed730b583b86b06230e6d05d2cca698fcf66d0b7cbf350e4b2eb436e22a25b0bc089d6ffc68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec440720172ee85c39376a3708abbd53

    SHA1

    d9d1bd6eeafbbdb84b1fa490f4c24c4f5b461f3c

    SHA256

    7e0d495141e4a11da55243415b6f6a158be48c41e5d3da50ad44625a8084a73f

    SHA512

    569b4267254bdd50303524376d1569609f4d8f7e77f39346773d82f065c32c6cad2f2d0b929993528305c02b30b396311ce808809f1d76425d00060858398c23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18186cf718a066d0f09f07c1ef889475

    SHA1

    12b55ef721c36370f7839120c5005328f44605f4

    SHA256

    353d60aca80a0156cf0901d7db9ea08130020c7bb47815fdb2a60ff171902ee7

    SHA512

    5f80e493dae0a1f2edf6f1c4293f8a55609eafd729b2a8699072cb45546914403e3ed207763fcd1e5512eb6ef2dbefd4b4e7d91fa9a2a722c9eda9114ece4e1f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    585da8d1a9bc705c6f12ffc4bb004faa

    SHA1

    fee90f2a9cd29489a8bb97f5dbde3a0ffa6e655e

    SHA256

    c7efe2663c8cf2cd2126affc516dbbd807daa1d110458c998dad0e06e594af67

    SHA512

    b42f87957fdade32ad4c111e84b90828f5b5356a90d268741c126c1bba8ec120cbad91eddbf64f94ce186ccf86c88d2c306f54a34893c418f6c9e03edb618d70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47aa9a6f9a017041336495479cea4528

    SHA1

    144f788e107fb70bdaba97c19a5d8b553c9f459c

    SHA256

    e025a695216f7a70bda0723a63ce02e6b954d152d6882b3b881e39d374fe0acd

    SHA512

    eb480a4ab63b53b276206f331bf9132abc1a0796b694c6805006f534352fb4b225f729ba66160cb1df1f0d645801ac2b10658688d46f6922b7860d2710e30a22

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bddc589fff7ee4fa0251b7fd08049199

    SHA1

    183a731dadc758b260a42bebf89bf64c8a2b979e

    SHA256

    d66e8bdd2cd61fc4ce90d4876fe17dea025a6964df0a36ef05d03d71f36bca4a

    SHA512

    098b582d17ffb47e5e4784d5b4d3f036ce0553758712b406cf5f36c0efd31785aa781249562794fb321ba6cbfa674e899ee85173259ca9b4fa09ab9134e57d5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92d6512dd2d1fbe59fe4ed44700fa865

    SHA1

    f166a5425ba23e5b797a565cad9fc7fc0b7d73ff

    SHA256

    56383dcedbb657cb450cdefc83700c2778f2d1fc413c42eca1fd218c015ed9f3

    SHA512

    512047a2d17b4020e5e22364871ed6862e7161346357ca5c7f89b44fe566698640a1a1ec0d73201d3275c2d7c002cc47309e21a537ba27a1b71d61c05b682cc1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c11485ef577e4daf4a96ced068c211c7

    SHA1

    8c545601e1daabae478037276ea0036a9c82199d

    SHA256

    98514152c0cb78347e43ec212ac065b7e5f319ce09473f974e5b475517d668e8

    SHA512

    25e991932d1d1741ca32885802ea91484588bf5f9c672f3df36214ac660fb606d5efd6de8082aab2793ca534394802f71dd49a5eca9eb19de9630383ecfa6e44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    175a2528b6b614401aa05bafd2dd8669

    SHA1

    629234124768ba1c630e7f9413c0033a4ad1796e

    SHA256

    f176c7ed0f4a170f44572bfbd9131a0beaa1529826b95968ea3ba2ef48b8333c

    SHA512

    524bf40526b9f7ef1d52c581cc1f1a84523d055a93a2255248e60dc017a42c614783a3a46942da5076e13dc88e20c3c448c0fa22bb5944e7e6b08f3948da8867

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f09bf2aa8ae861e87dc74d5cf497337f

    SHA1

    b8c68b5a2d50ee558d173bcbdaf8d71c4883ef70

    SHA256

    7e4ddcb8f8e3c5a4807eca6d23ea08a1f0e8366b9e28235109074768490a71be

    SHA512

    514f7f83c047d6420effafcfc8ae82ff79ffc154682939eb53c9a973539578bf44385b2bfa83b5131ba132d492af9acb149730879e8649971d71ac99600a4546

  • C:\Users\Admin\AppData\Local\Temp\Cab7179.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar720B.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b